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What a difference a year makes. In the March 1994 issue of LAN Magazine we 
discussed Microsoft Windows NT Advanced Server (NTAS) 3.1 TCP/IP 
integration into LANs and found limitations such as static mapping tables 
and NetBIOS (see "Far and Wide With NT," page 61) . The good news is that 
most of these issues have been resolved in Windows NT Server 3.5. 



This release addresses many elements of implementing large-scale TCP/IP 
networks, including network management, easy address distribution, logical 
name and IP mapping, and roving users traversing subnets. The basic Windows 
NT Server license includes a native 32-bit protected-mode version of TCP/IP 
for server and clients, incorporating TCP session utilities such as ftp, 
tftp, telnet, IP printing, ping, and Address Resolution Protocol (ARP) . 
Windows NT Server also supports SNMP collection and management services, 
and the ability to create an ftp server. And, yes, it works with NetWare. 

TCP/IP is quickly gaining ground after the protocol wars of the last 
10 years. Although there are still a few skirmishes, most notably with IPX, 
VINES, and Xerox Network System (XNS) , most companies are bringing--or 
thinking about bringing — their networks under the rubric of TCP/IP. Along 
with this wealth of information, however, may come potential problems in 
connecting to the pipeline while maintaining functionality with internal 
LANs. 

As the lone accepted protocol for spanning all information system 
platforms for transport and management, TCP/IP's appeal lies in what it can 
connect to rather than its intrinsic functionality. So, as historians 
debate the impact of the protocol wars, system engineers must foster 
wide-area TCP/IP networks, finding strategies to implement, support, and 



troubleshoot . And Windows NT Server 3 . 5 is a tool worth considering for 
this purpose. 

INSIDE THE INTERNET 

To appreciate the support Windows NT Server 3.5 can provide toward 
developing a strategy for building a manageable TCP/IP network and Internet 
connectivity, consider the architecture and management services on the 
TCP/ IP-based Internet. 

The Internet is a mesh of many autonomous networks connected in a vast 
wide area network. It's relatively inexpensive to access, it's global, and 
the numerous routers and other structural components that support it are 
managed by people outside your organization. This gives users easy access 
without requiring them to create or maintain the structure. 

The Internet's dependence on two protocols, known collectively as 
TCP/IP, in addition to network management and cross-platform support, is 
the driving force behind the stampede of companies looking to support this 
protocol on their networks. 

Transmission Control Protocol (TCP) is a connection-oriented protocol 
that keeps track of packets through reception acknowledgments. As the 
mechanism that ensures all data reaches a destination, it's comparable to 
the transport functionality of IPX, XNS, and VINES. Think of it as the 
Federal Express or United Parcel Service of the network — it picks up and 
delivers packets while maintaining reliability. 

Internet Protocol (IP) is a lower-level connectionless protocol 
designed to cut through the maze of routers that compose the Internet. It 
doesn't address connection; it relies on the higher-level TCP for that. 
Instead, IP's purpose is to route the packets to assigned destinations and, 
if necessary, find new routes when failures occur. 

These two protocols, working in tandem, allow millions of computers 
and thousands of networks with unique addresses to operate together. 
Although address management is at the heart of a reliable TCP/IP network, 
another component must be understood before you can fully integrate Windows 
NT Server into your network: the Domain Name Service (DNS) , which is used 
to map IP addresses to more socially acceptable logical names. 

THE ABCs OF DNS 

Internet servers and most users have a fixed IP address. To make the 
address more readable and user-friendly, they're also assigned an alias, 
which is a name mapped to that address. The alias is a familiar tag that 
looks something like: mchacon@inacom.com. 

This scheme allows multiple aliases to point to the 
same IP address. The technique stems from the days 

when hosts were large machines in raised-floor, air-conditioned rooms, and 
multiple users worked simultaneously on terminals hardwired into the 
system. Several users at terminals connected to a host machine could log on 
using unique names, but the terminals used the host's Internet node 
address. The host would locally resolve the address to the user ID. To 
match the alias to the correct IP address on the WAN, the DNS was 
introduced. Any TCP/IP network that uses aliases must have a connection to 
a DNS. 

All DNS servers connected to the Internet can find out about each 
other through routers, and they use the aliases' hierarchical nature to 
locate each other. For example, when the alias cking@jou.ufl.edu is 
presented to a DNS, it's resolved from right to left. Because edu 
represents education, the local DNS will contact the DNS that knows the 
locations of educational institutions. That DNS, in turn, will look up ufl, 
which stands for University of Florida. Then, that DNS contacts the 
University of Florida DNS and asks for the IP address of jou (College of 
Journalism) . The final DNS in the search will resolve the IP address where 



the alias eking resides. 

The DNS solution has worked fairly well on the Internet and with 
host-based networks, but as time goes on it's becoming outdated. It doesn't 
accommodate the installed base of nodes on LANs . Although the DNS model 
isn't going to vanish, the growth of the Internet will continue to put 
demands on the service. 

Today's user doesn't rely on a hardwired terminal. It's not uncommon 
to have multiple machines on a single network or to carry a portable PC to 
different locations. Thus, we need our aliases to follow us as we move from 
place to place. DNS simply wasn't designed for this. DNS tables are 
static--they don't automatically reconfigure themselves to reflect changes 
in the network when users move from place to place. That leaves the already 
overworked network administrator with the tedious task of adding and 
updating name and address entries on the network. 

Armed with this framework, we're ready to fully appreciate the TCP/IP 
services available on Windows NT Server 3.5 that are compatible with 
existing DNS servers. These services are Dynamic Host Configuration 
Protocol (DHCP), Windows Naming Service (WINS), and SNMP support. 

AN ADDRESS OF DISTINCTION 

DHCP lets computers obtain an IP address automatically when they 
connect to the network. Workstations can also learn critical network 
information, such as the default gateway address and subnet mask 
information, from the DHCP server without manual configuration or manual 
assignment of an IP address by the administrator. Designed by the Internet 
Engineering Task Force (IETF) to reduce the amount of configuration 
required for using TCP/IP, DHCP is defined in Requests for Comments 1533, 
1534, 1541, and 1542. 

DHCP can collect, manage, and assign IP addresses to computers 
remotely and automatically from a single management point. All the 
information, such as the default gateway, subnet mask, and DNS address, is 
stored at the DHCP server. With DHCP, the IP addresses are assigned on the 
fly, essentially leased for a specific period of time to the user by the 
DHCP server. 

Unlike bridges and routers, user stations are dynamic in terms of 
operation. A workstation may need TCP/IP only occasionally to access data 
on a remote network. The user may be working on a portable computer that 
will connect to different parts of the network at different times, and will 
be unaware that the address he or she is using is changing. The computer 
works in the background to maintain the lease with the DHCP server. 

The length of the lease, which is variable, is configured by the 
network administrator. When the lease approaches expiration, the device is 
notified to renew and the process is managed behind the scenes. If the 
lease is renewed for another term the cycle repeats itself with no user or 
administrator intervention. When the DHCP lease finally expires, the IP 
address becomes available for another user on the LAN. 

The DHCP leasing system enables any LAN that has more IP clients than 
available addresses to use IP as a secondary protocol, to be invoked for 
WAN access only. While not always desirable, a secondary client protocol is 
often necessary. An existing LAN might be using a protocol such as IPX 
that's well suited for all LAN communication, but may only occasionally 
need to access WAN multiple-platform remote resources. Or, perhaps the 
network has outgrown the assigned range of IP addresses. When IP is used 
only as needed, a limited number of IP addresses can cover a multitude of 
users . 

Many of today's users have portable computers and need the flexibility 
to plug or dial in to the network from different locations. With assigned 
IP addresses, a different fixed IP address would be required for each 



location. Each address would be dedicated to one user, unavailable for use 
by any other system even in an idle state. Also, the network administrator 
would have to manually assign and recover unused addresses each time the 
client configuration or location changed. 

DHCP eliminates this problem by allowing the administrator to 
establish a pool of addresses to be assigned to clients as needed. It then 
collects and reuses the addresses as necessary, without the direct 
intervention of the network administrator or, more importantly, the client. 

Network administrators can configure the network once and the DHCP 
server will maintain the TCP/IP addressing information without 
intervention. Multiple DHCP servers can be configured for redundancy, and 
the information they contain can be routed between these servers and used 
for redundancy. 

If each network had only one DHCP server and it failed, the whole 
subnet wouldn't function properly for clients relying on the DHCP services. 
Also, the DHCP server can be remotely monitored and updated, giving the 
administrator the ability to reconfigure the entire network from a remote 
Internet central site. This centralized administration functionality makes 
for a more effectively managed network. 

MAY THE BEST MAP WIN 

DHCP is a great tool for getting IP running and connecting with 
traditional-style IP hosts. But that's only half of the equation. We also 
want to incorporate our current LAN-based systems into the WAN; we want the 
whole network to appear homogeneous and local to the users. This is where 
another Windows NT Server service, WINS, fits into the picture. 

Most of today's protocols use broadcasts for many system and service 
communications. Broadcasts are messages sent out to every device on the 
network. While this works fine on LANs, it wreaks havoc on WANs. 

A broadcast must travel across the entire network to function, so it's 
easy to see why a large network with limited-bandwidth interconnection 
devices, such as routers and leased lines, can become overburdened. These 
devices may spend most of their time sending those pesky little broadcast 
packets all over the place. And attempting to send broadcasts over ATM 
backbones or public services such as the Internet is not recommended. By 
design, very large systems can't support the broadcast concept. The problem 
is rooted in the fact that LAN-based legacy systems relied on broadcasts to 
support user browsing, or hunting for resources, on the network. 

WINS is similar to DNS in that it helps resolve logical names to IP 
addresses. But DNS is a static table that maps user or host names to IP 
addresses. WINS extends this concept by providing dynamic mapping of 
computer names to IP addresses, eliminating the need for HOSTS files 
(static local files used to map computer names to IP addresses) . 

WINS uses TCP/IP to achieve routing functionality, and all WINS 
servers with connections regularly exchange and update information. 
Browsing allows the user to see all resources available on the network 
through his or her applications. 

Windows NT Server uses workgroups and domains to manage network 
resources and users. Workgroups and domains are nothing more than logical 
collections of such users and resources. This logical grouping shields the 
user from physical considerations, such as location or link speed of the 
network . 

For example, the Sales Domain might exist in three different locations 
on three different networks. To the user, the Sales Domain is simply one 
grouping of resources within the organization. He or she doesn't have to 
understand where or how the connections to these resources are handled. A 
single location might have several logical groupings where the Sales Domain 
and the Engineering Domain may be on the same physical network. 



The network designer or manager, however, can't ignore these physical 
considerations. Network administrators must deal with such issues as line 
speeds over wide area links, multiple routes, and multiple protocols. 

The advantages of WINS are demonstrated when a user browses for a 
resource on the network. Originally, browsing involved listening to 
broadcasts from local resources and storing the name and address 
information. Broadcasts are local and tend to create a lot of traffic, 
therefore, past users who wanted to browse a remote resource had to drop 
back to a static HOSTS file table to locate remote addresses. After the 
resource was located in the table, a connection to the desired resource 
could be made that allowed querying of the host and resources there. 

Since the release of Windows for Workgroups 3.11, the TCP/IP supplied 
by Microsoft no longer uses broadcasts or HOSTS files as the only means of 
finding a resource through browsing. Instead, Windows for Workgroups 3.11 
and Windows NT Server 3.5 (as will Windows 95) browse over IP using a 
datagram. This is a subprotocol of IP that provides point-to-point 
transmission packets that don't require acknowledgments. With this TCP/IP 
service, the user will be able to talk to WINS . If WINS doesn't have the 
information stored locally, it will contact other WINS servers and resolve 
the request for the user much as the DNS resolves domain user names. 

To maintain compatibility with other methods, HOSTS files, DNS, and 
broadcasts can be used if WINS can't deliver the necessary information 
dynamically. Each host can be configured to resolve names by any or all of 
these methods. Administrators can configure a collection of hosts from a 

single point if those hosts use DHCP. 

One example of WINS' advantages lies in the use of ping, a common IP 
tool that bounces packets off a selected host machine. With a DNS-only 
system, the command PINGNAME. SERVER.UFL.EDU first asks the DNS for the IP 
address of name.server.ufl.edu. Then the client sends a packet to 
name. server, ufl.edu via its IP address (128.227.28.4, for example) and 
records the time it takes for name.server.ufl.edu to send back an 
acknowledgment . 

This system works well, but if you want to use ping for a packet 
that's not in the DNS tables, you must know the IP address or use the WINS 
service . 

With WINS, ping can be used to find a computer name such as APPS, and 
WINS will deliver the IP address needed to complete the ping. This feature 
enables every host machine to dynamically add its name to the WINS table of 
machines. In a DNS and WINS environment, the ping command will work with 
computer names and IP aliases; all of them transparent to the user. 

SITUATING THE SERVER 

The first step in implementing DHCP and WINS with Windows NT Server is 
to determine whether the network will ultimately be connected to the 
Internet. If so, you must contact the Network Information Center for a 
network IP address with its associated block of host addresses (send e-mail 
to mailserv@rs.internic.net). Because your IP address must be unique to 
attach to the Internet, and these addresses are rapidly disappearing, 
you'll want to do this as soon as possible. 

Once your block of addresses has been identified, spend some time in 
the planning stage. The IP network design has many options. For example, 
it's a good idea to set aside a range of addresses that will be used for 
static devices such as servers, routers, and bridges. Keeping these devices 
within a range makes them easier to identify with network management tools 
and protocol analyzers. This isn't a must, but it contributes to the 
elegance of design. 

Once these addresses are identified, the administrator creates a DHCP 



scope, which contains all of the information necessary for a workstation to 
use TCP/IP. This includes a range of specific addresses, reserved for 
static devices, that won't be dynamically allocated. Also included are the 
network's subnet mask and the default gateway used to reach beyond the 
network. Finally, a range of addresses is incorporated that will be 
dynamically allocated to the workstations when they request to lease an 
address from the DHCP server. 

As shown in the DHCP configuration screen (Figure 1) , the range of 
dynamic addresses and excluded addresses is entered in the Start Address 
and End Address boxes of the IP address pool. Then the subnet mask is 
entered so that the workstations will participate in any subnetworks 
configured in the routers. 

Next, the previously determined exclusion range for static devices is 
entered into its Start Address and End Address boxes. Individual addresses 
can also be added here if desired. Finally, the lease duration is entered 
as an unlimited duration or a fixed duration. In static environments where 
users are employing TCP/IP much of the time, leases are generally set for 
at least one year. When users have portables that traverse subnets, there 
are more users than available IP addresses, or these users employ TCP/IP 
sporadically, lease duration may be one day or less. 

CONFIGURING THE CLIENT 

The traditional approach to TCP/IP address management isn't fun. Each 
address must be manually assigned and configured to each workstation. If 
any information is entered incorrectly, the workstation will have trouble 
communicating with the network. Also, if the user moves to another subnet, 
the administrator must reconfigure the workstation to enable it to 
communicate properly. 

Installing the DHCP client software for TCP/IP in a Windows or Windows 
NT environment is quite simple. The configuration screen presents several 
boxes that relate to various TCP services such as SNMP, ftp, and other 
utilities. At the bottom of the screen is a box labeled Enable Automatic 
DHCP Configuration. When installing the TCP software, be sure this box is 
checked; when the workstation initially connects to the network it will 
obtain its TCP/IP information from the DHCP server. 

If the TCP/IP information is already entered, or is entered 
subsequently, that information will override the DHCP participation. If the 
information was entered previously, remove the entries and check the Enable 
Automatic DHCP Configuration box. The next time the workstation comes 
on-line, it will receive all its TCP/IP information from the DHCP server, 
as in the previous example. These configuration screens are found in the 
Control Panel under the Network icon in Windows and Windows NT. 

Once the DHCP service has been installed and initiated on the server 
and the workstation receives its information from DHCP, all management of 
the TCP/IP network can be handled at the DHCP server. Also, changes to 
network design, such as new subnetworks and WINS services, will be updated 
automatically for the workstation. 

By implementing DHCP and WINS, Windows NT Server has solved many 
problems associated with TCP/IP networks. The cumbersome administration 
required to use the TCP/IP protocol and the need to accommodate the dynamic 
nature of today's networks have been successfully addressed. Roving users, 
dial-in access, and the limited quantity of IP addresses can be managed 
with Windows NT Server, DHCP, and WINS. 

With DHCP and WINS services' ability to be remotely configured along 
with the published APIs, administrators' lives will be much easier. Do 
yourself a favor: Get a copy of NT Server 3.5 and try it out. It integrates 
into an existing NetWare or Unix environment and manages TCP/IP for the 
entire network. And, by the way, it also does a decent job of File and 



Print . 

Despite Windows NT Server's virtues, there's still a lot of room for 
improvement. A major one would be enabling the WINS service to look like a 
DNS server on one side to act as a complete liaison with DNS servers on the 
Internet. There's a utility in the Windows NT Server Resource Kit that 
helps address this issue. The resource kit is an essential toolbox and 
administration guide to designing, configuring, and maintaining a large 
multiple-site TCP/IP network, and should be included as a basic component 
of Window NT Server. 

Michael Chacon is a senior network consultant for Inacom's national 
integration services, based in Garden Grove, CA. He can be reached on the 
Internet at mchacon@inacom.com. Claude King is a senior systems analyst at 
the University of Florida in Gainesville. He can be reached on the Internet 
at cking@jou.ufl .edu. 
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said. "Also, one major problem of not having a shared registry is that the 
same name, registered by different parties with 
different IP addresses, can cause serious problems," 
she said. 

"What if there are two Pitumas. One registers as Pituma.com with 
ThaiURL, the other registers as Pituma.com. . . 
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. . .different web page will be displayed. 

The second method is through the use of software virtual servers, 
where the system is set up so that multiple host names refer 
to the same IP address. The results then depend on 
which URL name the server receives. 

These packages provide a delivery method for your data, but the 
ability to create a presentation is also needed. This has not... 
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...one main and two virtual sites, and this is perhaps the most interesting 
feature of the server. 

Although the virtual sites are housed on the same server, they 
appear to be at completely different addresses but housed on 
different machines . 

We could create a different IP address for each 
virtual site or, alternatively, we could opt to use the same 
IP address for each location as the RaQ 2 supports 

name-based virtual sites as well. It is this flexibility that makes 
the virtual site support such an attractive feature. 
Having created two virtual locations, we... 
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. . .users simultaneously connect to the same web site, Internet Station will 
accommodate the separate sessions. The resource (such as a web site) will 
see the same IP address from each user. However, 
because Nat keeps track of users on the local network by IP 
address and port allocation, multiple users can access the 
same resource without confusing Internet Station. 
Handling domain names 

Another element of InstantIP is Domain Name Service (DNS) , which 
simplifies Internet usage and reference to resources on the Internet by 
mapping names to IP. . . 
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Abstract: The process of buying, selling or interacting with customers via Internet, Tele-sale, Smart card or other 
computer network is referred to as electronics commerce. Whereas online trade has been touting its flexibility, 
convenience and cost savings, the newest entrant is wireless e-commerce. This form of business offers many 
attractions; including 24 hours seven days' open shop-business, vastly reduced fixed cost, and increased profitability, 
Amazon.com is an example of a successful venture, in e-business. Internet service providers (ISP/ ASP) have a 
significant influence on the feasibility, security and cost competitiveness of an e-business venture. In the ISP model 
of services, multiple users and their databases are normally offered on a single hardware, platform sharing the same 
IP address and domain name. Clients will require a mechanism, which allows them to update their Web contents 
and databases frequently even many times daily without intervention of local system administrator (ISP admin). The 
paper overviews few steps to enable corporate clients to update their Web content more securely. ( 10 Refs) 
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Abstract: Server replication is a common technique for distributing content efficiently and in a scalable manner to 
many clients. Directing clients to the "best" of these content-equivalent servers is a non-trivial problem. As a 
solution, we propose CDAA (Content Distribution Architecture using Anycast) that uses replicated servers and 
leverages the idea of anycast, supported at the network layer, to direct clients. CDAA assigns the same anycast 
address to content-equivalent servers and tracks the load on each of them. This information is used to direct clients 



in the network to the "best" server, improving user satisfaction by reducing the response time seen by the clients. 
CDAA is scalable, incrementally deployable and transparent to existing network applications and protocols. These 
objectives are achieved with minimal bandwidth overhead and computing requirements. Though the DNS (Domain 
Name System) and client software require some modifications, the routers and servers remain unchanged. We also 
present simulation results that demonstrate the efficacy of our architecture. ( 20 Refs) 
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The extent of variation in the migratory movements that occurred in 
Sicily was evaluated using surname data taken from the telephone 
directories of the 3 90 communes of the island. The surname distribution of 
each commune was linearized by a log-log transformation, and a significant 
fit to a linear regression model was found in almost all cases. 
Interestingly, the slope of the regression line appeared to be a sensitive 
indicator of the different level of isolation associated with each 
Sicilian commune. By this approach, two distinct groups of communes, 
showing a higher or lower degree of isolation, were obtained, and two 
independent analyses of the surname structure of Sicily were carried out. A 
first multidimensional scaling analysis, based on the more isolated 
communes, yielded evidence for a more ancient pattern, characterized by a 
geographical gradient along the east-west axis. The same analysis, 
addressed to the less isolated communes, instead highlighted a wide 
network of interactions between geographically distant zones of the 
island. The fitting of the surname distribution to the log-log model 
allowed for the detection of a narrow subset of 35 Sicilian communes, whose 
significantly higher degree of isolation was statistically proved by the 
parallelism test. We believe that a genetic analysis focused on such 
specific zones of the island could reveal ancient patterns of 
differentiation, thus helping to answer the controversial question of the 
genetic history of Sicily. 



